How does one approach securing an HTTPRoute using HTTP Basic Authentication?
From what I understand, Gateway API has no opinion regarding authentication:
[...] to configure some advanced features like authentication [...], you will need to rely on the extensions of the Gateway API (source)
Another place in the documentation has this to say:
[...] A Gateway implementation can define custom resources called Policies for exposing data plane features like authentication (source)
What are some known Gateway API implementations that implement a policy to support basic HTTP Authentication?
I have implemented several solutions always with the use of dex and Pomerium.
dex as a federated OpenID Connect provider and Pomerium as an authentication reverse proxy.
Try taking a look at these documentations:
https://dexidp.io/docs/kubernetes/#overview
https://www.pomerium.com/docs/identity-providers
Furthermore, there are Helm Charts provided by the Vendors that are really easy to implement.